5.4

CVE-2013-6706

The Cisco Express Forwarding processing module in Cisco IOS XE allows remote attackers to cause a denial of service (device reload) via crafted MPLS packets that are not properly handled during IP header validation, aka Bug ID CSCuj23992.
Daten sind bereitgestellt durch National Vulnerability Database (NVD)
CiscoIos Xe Version-
Zu dieser CVE wurde keine Warnung gefunden.
EPSS Metriken
Typ Quelle Score Percentile
EPSS FIRST.org 2.04% 0.786
CVSS Metriken
Quelle Base Score Exploit Score Impact Score Vector String
nvd@nist.gov 5.4 4.9 6.9
AV:N/AC:H/Au:N/C:N/I:N/A:C
CWE-20 Improper Input Validation

The product receives input or data, but it does not validate or incorrectly validates that the input has the properties that are required to process the data safely and correctly.

http://osvdb.org/100394
http://secunia.com/advisories/55817
http://tools.cisco.com/security/center/content/CiscoSecurityNotice/CVE-2013-6706
Vendor Advisory
http://tools.cisco.com/security/center/viewAlert.x?alertId=31950
Vendor Advisory
http://www.securityfocus.com/bid/63979
Third Party Advisory
VDB Entry
http://www.securitytracker.com/id/1029407
Third Party Advisory
VDB Entry